how to setup FIREWALL with RRAS?

[jkoXP]

i dont remember if theres a way to or not. I have a dialup and maybe getting broadband, i want my server to be the router, and need to know if it can do some firewalling (the server is 2000 advanced server)

 

[bignick]

RRAS in win2k server (all versions) supports NAT (network address translation). NAT in itself is a firewall, in the simplest sense. You can turn on port filters to reduce your security risk. I've setup several win2k servers running RRAS for clients, and they've never been hacked (knock on wood) in the 18 months they've been up. Make sure that before you expose a Windows server to the internet, that you lock it down. First and foremost, disable all accounts you don't need. Second change the default file permissions on all drives to be at least-

Administrators, system - full control
power users - modify (or server operators, since it's a server)
users - read

don't use the everyone group. also unbind file and print sharing, and client for microsoft networks from the interface connected to the internet.

search google for more info/help

 

[jkoXP]

thanks for the help! its also going to be a print server, using its USB ports, anything special i should do? ill go into security policy and lock it down too.

 

[jkoXP]

also, Nat would be the better choice over ICS, right? cus I want the clients to obtain an IP automatically, and also access the dialup internet from the server w/o doing anything. Can i do this with NAT?

 

[jkoXP]

?